How we can use AI and organization to harness diversity and inclusion in cybersecurity
Diversity needs to be boosted in the cybersecurity industry. Image: Christina/Unsplash
- There is a profound underrepresentation of women and people of colour in cybersecurity.
- But a diverse cybersecurity force is not just desirable, it's essential.
- Embracing this comprehensive, evidence-backed approach can ensure that the cybersecurity realm is not only robust against threats, but is also a beacon of inclusivity and equity for all.
The evolving panorama of cybersecurity is seeing a massive shift as artificial intelligence (AI) tools become hackers' weapons of choice. Simultaneously, this shift shines a spotlight on a pressing concern in the field – the glaring lack of diversity.
Historical data exposes the profound underrepresentation of women and people of colour in cybersecurity. A 2019 report from (ISC)² found that women constituted only 24% of the cybersecurity workforce. By 2022, this figure rose to 30%, signifying progress but also emphasizing the existing disparity. However, a watershed moment presents itself.
The digitized arsenal of AI tools that hackers deploy calls for an equally multifaceted defence. As the adage goes, 'It takes a village.' In cybersecurity, it requires an ensemble of varied backgrounds, cognitive abilities and perspectives.
How is the Forum tackling global cybersecurity challenges?
Diversity's quintessential role in cybersecurity
With AI playing an increasingly dominant role in cyberattacks, it’s essential to restructure our defence strategies. Here's why a diverse cybersecurity force is not just desirable, but essential:
1. AI's evolution necessitates a varied defence
With hackers weaponizing AI, defending our digital realms requires a medley of unique insights and innovative problem-solving approaches that can only come from diverse teams.
2. Anticipating a spectrum of threats
A team that mirrors the multicultural milieu it defends is inherently better equipped to foresee and neutralize a vast range of cyber threats.
3. Redefining traditional norms
With the onset of AI-centric cyber warfare, there's an evident need to reevaluate existing paradigms. Fresh entrants, unencumbered by traditional methodologies, bring invaluable new perspectives.
An evidence-based approach
While training initiatives in organizations aim at fostering diversity, they're merely the tip of the iceberg. As argued by Ivuoma N. Onyeador, an assistant professor at the Kellogg School, training can be an initiation but not the culmination of diversity efforts.
Several fallacies pervade the current approaches:
• Sole reliance on implicit bias training often proves ineffective and might even reduce an individual's accountability.
• Organizations need to understand that merely advertising inclusivity doesn't equate to genuine inclusivity. A pledge for diversity should be manifested in actions, not just words.
• Metrics are indispensable. If an organization fails to measure the progress and impact of its diversity programmes, it essentially sails without a compass.
• Accepting the challenge. Building a truly diverse organization is undeniably challenging. Yet, the very essence of growth lies in embracing and surmounting challenges.
Accountability and measurement
Building upon a 2006 study, the most effective route to managerial diversity is institutionalizing accountability. Whether it's the introduction of a chief diversity officer or attaching diversity metrics to bonuses, ensuring responsibility is paramount. After all, a goal without accountability is merely a wish.
The road ahead: the confluence of AI and inclusive initiatives
To thrive in this age of digital upheaval, a multi-pronged approach is paramount. This necessitates:
Education and training
More than generic courses, we need tailored programmes that cater to marginalized communities, offering them scholarships, internships and specialized training.
Revamping recruitment
Blind recruitment, a process that ensures hiring devoid of biases, is a potent tool in this regard. Moreover, establishing an organizational responsibility for diversity can provide a more systematic framework for inclusive recruitment. A study published in the Harvard Business Review highlighted that blind recruitment led to a 5-10% increase in the hiring of women and underrepresented minorities.
Mentorship and networking
While mentorship integrates newcomers into the fold, networking events focusing on women and minorities can amplify community building and knowledge exchange.
A feedback loop
Instituting a feedback mechanism can help organizations identify the lacunas in their diversity programmes, refine them and consistently evolve.
Diversity as an organizational goal
By tying measurable outcomes, such as bonuses, to diversity metrics, organizations can incentivize and achieve tangible progress. Onyeador's sentiment is clear: "We would find the Black engineers. They're there." Measurement and accountability also stand out. As Onyeador highlights, often organizations embark on the journey of improving diversity without a clear road map or the tools to measure their progress. This lackadaisical approach stands in contrast to how these entities would approach other business objectives.
The AI-infused future of cybersecurity beckons a shift - not just in tools but in the very fabric of the industry. Diversity isn't merely a checkbox to tick, but a vital cornerstone. Embracing this comprehensive, evidence-backed approach can ensure that the cybersecurity realm is not only robust against threats, but also a beacon of inclusivity and equity for all.
Don't miss any update on this topic
Create a free account and access your personalized content collection with our latest publications and analyses.
License and Republishing
World Economic Forum articles may be republished in accordance with the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International Public License, and in accordance with our Terms of Use.
The views expressed in this article are those of the author alone and not the World Economic Forum.
Stay up to date:
Cybersecurity
Related topics:
Forum Stories newsletter
Bringing you weekly curated insights and analysis on the global issues that matter.
More on CybersecuritySee all
Kate Whiting
December 12, 2024